function cevapSahibi($cevapID)
{
global $yol1;
$usernam = substr(temizle($usernam), 0, 15);
$sql1 = "SELECT userID FROM eo_askanswer \r\n\t\t\twhere id='" . temizle($cevapID) . "' limit 0,1";
$result1 = mysql_query($sql1, $yol1);
if ($result1 && mysql_numrows($result1) == 1) {
return mysql_result($result1, 0, "userID");
} else {
return "";
}
}
function getKonuKayitliKullanici($gelenID)
{
global $yol1;
$sql1 = "select sadeceKayitlilarGorebilir from eo_4konu where id ='" . temizle($gelenID) . "'";
$result1 = mysql_query($sql1, $yol1);
if ($result1 and mysql_num_rows($result1) == 1) {
mysql_fetch_row($result1);
return mysql_result($result1, 0, "sadeceKayitlilarGorebilir");
} else {
return "1";
}
}
function getUserIDcomment($usernam, $passwor)
{
global $yol1;
$usernam = substr(temizle($usernam), 0, 15);
$sql1 = "SELECT id, userName, userPassword FROM eo_users where userName='******' AND userPassword='******' limit 0,1";
$result1 = mysql_query($sql1, $yol1);
if ($result1 && mysql_numrows($result1) == 1) {
return mysql_result($result1, 0, "id");
} else {
return "";
}
}
// For security and spam protection reasons check if $_POST['token'] has the same value as $_SESSION['token']
if (isset($_POST['name']) && trim($_POST['name'] !== "") && trim($_POST['name'] !== "name") && strlen($_POST['name']) < 26 && (isset($_POST['url']) && strlen($_POST['url']) < 100) && (isset($_POST['message']) && trim($_POST['message']) !== "" && trim($_POST['message']) !== "message" && strlen($_POST['message']) < 400) && (isset($_SESSION['token']) && $_POST['token'] == $_SESSION['token'])) {
$name = $_POST['name'];
$url = trim($_POST['url']);
if (strstr($url, 'http://') && strlen($url) == 7 || $url == "") {
unset($url);
}
$msg = $_POST['message'];
// Get a sender IP (it will be in use in the next wTag version)
$remote = $_SERVER["REMOTE_ADDR"];
// Store it converted
$converted_address = ip2long($remote);
$oda = $_SESSION["oda"];
$name = iconv("UTF-8", "ISO-8859-9", temizle($name));
$url = iconv("UTF-8", "ISO-8859-9", temizle($url));
$msg = iconv("UTF-8", "ISO-8859-9", temizle($msg));
// Insert a new message into database
if ($msg != "") {
$sql->query("INSERT INTO eo_shoutbox SET name= '{$name}', url='{$url}', message= '{$msg}', ip='{$oda}', date=now()");
}
// Get the id for the last inserted message
$lastid = $sql->get_id();
// Delete oldest messages
if ($lastid > 300) {
$sql->query("DELETE FROM eo_shoutbox WHERE messageid <({$lastid}-20)");
}
// Retrieve last 20 messages
$sql->query("SELECT date, name, url, message FROM eo_shoutbox WHERE messageid <= {$lastid} and ip='{$oda}' ORDER BY messageid DESC LIMIT 20");
} else {
// Just retrieve last 20 messages
$sql->query("SELECT date, name, url, message FROM eo_shoutbox where ip='{$oda}' ORDER BY messageid DESC LIMIT 20");
eOgr - elearning project
Developer Site: http://yunus.sourceforge.net
Demo Site: http://yunus.sourceforge.net/eogr
Source Track: http://eogr.googlecode.com
Support: http://www.ohloh.net/p/eogr
This project is free software; you can redistribute it and/or
modify it under the terms of the GNU Lesser General Public
License as published by the Free Software Foundation; either
version 3 of the License, or any later version. See the GNU
Lesser General Public License for more details.
*/
header("Content-Type: text/html; charset=iso-8859-9");
ob_start();
// Buffer output
session_start();
$_SESSION['ready'] = TRUE;
require "conf.php";
if (!check_source()) {
die("<font id='hata'>{$metin['295']}</font>");
}
if (md5($_SERVER['HTTP_USER_AGENT']) == $_SESSION['aThing']) {
$adi = temizle(substr(isset($_SESSION["usern"]) ? $_SESSION["usern"] : "", 0, 15));
$par = temizle(isset($_SESSION["userp"]) ? $_SESSION["userp"] : "");
if (temizle($_GET["sonSayfa"]) > 0) {
echo trackUserLesson(getUserID($adi, $par), temizle($_GET["konuID"]), temizle($_GET["sure"]), temizle($_GET["sonSayfa"]));
}
} else {
sessionDestroy();
}
<input type="text" maxlength="50" size="50" name="ara" value="<?php
echo RemoveXSS(isset($_GET["ara"]) ? $_GET["ara"] : "");
?>
" />
<input name="arama" type="image" id="ara" src="img/view.png" alt="Ara" style="vertical-align: middle;"/>
</form>
</p>
<?php
$currentPage = $_SERVER["PHP_SELF"];
$devam = RemoveXSS(isset($_GET["devam"]) ? $_GET["devam"] : "");
if (empty($_SESSION['soruLimit'])) {
$_SESSION['soruLimit'] = 5;
}
$limit = RemoveXSS($_SESSION['soruLimit']);
$arama = str_replace("'", "`", isset($_GET["ara"]) ? $_GET["ara"] : "");
$arama = substr(temizle($arama), 0, 300);
$tumKaySay = soruSayisiGetir($arama);
if ($devam == "1" and $tumKaySay > $_SESSION['soruLimit']) {
$_SESSION['soruLimit'] += 3;
$limit = RemoveXSS($_SESSION['soruLimit']);
}
if ($arama != "") {
$veriSQL = "SELECT * FROM eo_askquestion WHERE question \r\n\t\t\t\t\t\t\tLIKE '%{$arama}%'\r\n\t\t\t\t\t\t \tORDER BY eklenmeTarihi DESC LIMIT 0,{$limit}";
} else {
$veriSQL = "SELECT * FROM eo_askquestion ORDER BY eklenmeTarihi DESC LIMIT 0,{$limit}";
}
$veriSonuc = mysql_query($veriSQL, $yol1);
$kaySay = @mysql_num_rows($veriSonuc);
if ($kaySay > 0) {
?>
<p>
}
dilCevir($taraDili);
$aUsers = array();
$aID = array();
$aInfo = array();
$result = mysql_query("select realName from eo_users order by id");
for ($i = 0; $sonuc = mysql_fetch_assoc($result); $i++) {
$aUsers[$i] = iconv("ISO-8859-9", "UTF-8", temizle(htmlentities($sonuc["realName"])));
}
$result = mysql_query("select id from eo_users order by id");
for ($i = 0; $sonuc = mysql_fetch_assoc($result); $i++) {
$aID[$i] = iconv("ISO-8859-9", "UTF-8", temizle(htmlentities($sonuc["id"])));
}
$result = mysql_query("select userName from eo_users order by id");
for ($i = 0; $sonuc = mysql_fetch_assoc($result); $i++) {
$aInfo[$i] = iconv("ISO-8859-9", "UTF-8", temizle(htmlentities($sonuc["userName"])));
}
if (!empty($_GET['input'])) {
$input = strtolower($_GET['input']);
} else {
$input = "";
}
$len = strlen($input);
$limit = 5;
$aResults = array();
$count = 0;
if ($len) {
for ($i = 0; $i < count($aUsers); $i++) {
// had to use utf_decode, here
// not necessary if the results are coming from mysql
//
echo "<font id='tamam'> Site bakýma alýndý.</font>";
trackUser($currentFile, "success,SiteLock", $adi);
}
if ($_POST['ayar5char17'] == "1") {
if (@chmod($_uploadFolder, 0777)) {
echo "<font id='tamam'> Paylaþým klasörü yazýlabilir.</font>";
trackUser($currentFile, "success,SharedWrite", $adi);
}
} else {
if (@chmod($_uploadFolder, 0755)) {
echo "<font id='tamam'> Paylaþým klasörü salt okunur.</font>";
trackUser($currentFile, "success,SharedReadOnly", $adi);
}
}
$ayar5char = temizle($_POST['ayar5char1'] . "-" . $_POST['ayar5char2'] . "-" . $_POST['ayar5char3'] . "-" . $_POST['ayar5char4'] . "-" . $_POST['ayar5char5'] . "-" . $_POST['ayar5char6'] . "-" . $_POST['ayar5char7'] . "-" . $_POST['ayar5char8'] . "-" . $_POST['ayar5char9'] . "-" . $_POST['ayar5char10'] . "-" . $_POST['ayar5char11'] . "-" . $_POST['ayar5char12'] . "-" . $_POST['ayar5char13'] . "-" . $_POST['ayar5char14'] . "-" . $_POST['ayar5char15'] . "-" . $_POST['ayar5char16'] . "-" . $_POST['ayar5char17']);
$updateSQL = sprintf("\r\n\t\t\tUPDATE eo_sitesettings \r\n\t\t\tSET okulGenelAdi=%s, versiyon=%s, sayfaBlokSayisi=%s, \r\n\t\t\tsayfaKullaniciSayisi=%s, veriHareketleriSayisi=%s, \r\n\t\t\tayar4char=%s, ayar1int=%s, ayar2int=%s, ayar3int=%s, \r\n\t\t\tayar5char='%s',\r\n\t\t\tuploadFolder = %s,\r\n\t\t\tsiteUnlockPwd = %s,\r\n\t\t\tdefaultTheme = %s,\r\n\t\t\tdefaultLang = %s,\r\n\t\t\tfilesToPlay = %s,\r\n\t\t\tfileMaxUploadSize = %s,\r\n\t\t\tvideoChatSession = %s,\r\n\t\t\twhiteBoardSession = %s\r\n\t\t\t\r\n\t\t\tWHERE id='1'", temizle(GetSQLValueString($_POST['okulGenelAdi'], "text")), temizle(GetSQLValueString($_POST['versiyon'], "text")), temizle(GetSQLValueString($_POST['sayfaBlokSayisi'], "int")), temizle(GetSQLValueString($_POST['sayfaKullaniciSayisi'], "int")), temizle(GetSQLValueString($_POST['veriHareketleriSayisi'], "int")), temizle(GetSQLValueString($_POST['ayar4char'], "text")), temizle(GetSQLValueString($_POST['ayar1int'], "int")), temizle(GetSQLValueString($_POST['ayar2int'], "int")), temizle(GetSQLValueString($_POST['ayar3int'], "int")), $ayar5char, temizle(GetSQLValueString($_POST['uploadFolder'], "text")), temizle(GetSQLValueString($_POST['siteUnlockPwd'], "text")), temizle(GetSQLValueString($_POST['defaultTheme'], "text")), temizle(GetSQLValueString($_POST['defaultLang'], "text")), temizle(GetSQLValueString($_POST['filesToPlay'], "text")), temizle(GetSQLValueString($_POST['fileMaxUploadSize'], "int")), temizle(GetSQLValueString($_POST['videoChatSession'], "text")), temizle(GetSQLValueString($_POST['whiteBoardSession'], "text")));
mysql_select_db($_db, $yol);
$Result1 = mysql_query($updateSQL, $yol);
if ($Result1) {
trackUser($currentFile, "success,SiteInfo", $adi);
echo "<font id='uyari'> {$metin['536']}</font>";
} else {
trackUser($currentFile, "fail,SiteInfo", $adi);
echo "<font id='hata'> Site bilgilerinde hata olduðunda güncelleme iþleminiz tamamlanamadý!</font>";
}
}
}
?>
<br />
<br />
<?php
@session_start();
include "conf.php";
$aUsers = array();
$aID = array();
$aInfo = array();
$result = mysql_query("select konuAdi from eo_4konu order by id");
for ($i = 0; $sonuc = mysql_fetch_assoc($result); $i++) {
$aUsers[$i] = iconv("ISO-8859-9", "UTF-8", temizle(htmlentities($sonuc["konuAdi"])));
}
$result = mysql_query("select id from eo_4konu order by id");
for ($i = 0; $sonuc = mysql_fetch_assoc($result); $i++) {
$aID[$i] = iconv("ISO-8859-9", "UTF-8", temizle(htmlentities($sonuc["id"])));
}
$result = mysql_query("select eo_3ders.dersAdi as dersAdi from eo_3ders,eo_4konu where eo_4konu.dersID=eo_3ders.id order by eo_4konu.id");
for ($i = 0; $sonuc = mysql_fetch_assoc($result); $i++) {
$aInfo[$i] = iconv("ISO-8859-9", "UTF-8", temizle(htmlentities($sonuc["dersAdi"])));
}
if (!empty($_GET['input'])) {
$input = strtolower($_GET['input']);
} else {
$input = "";
}
$len = strlen($input);
$limit = 5;
$aResults = array();
$count = 0;
if ($len) {
for ($i = 0; $i < count($aUsers); $i++) {
// had to use utf_decode, here
// not necessary if the results are coming from mysql
//
break;
default:
$ktut = $metin[89];
}
$geceliKullID = getUserID2($adi);
if (isset($_GET["kisi"])) {
if (!empty($_GET["kisi"])) {
$_SESSION["seciliArkadas"] = RemoveXSS($_GET["kisi"]);
}
}
?>
<p> <?php
echo $metin[7];
?>
, <?php
echo temizle($_SESSION["userr"]) . " <a href='profil.php?kim=" . $geceliKullID . "&set=1' rel=\"facebox\">{$metin['311']}</a> " . $ktut;
?>
</p>
<?php
if ($_SESSION["tur"] == '0') {
$siniflar = getOgrenciSiniflari();
if ($siniflar != "") {
echo "<p>" . $metin[210] . " : " . $siniflar;
echo "</p>";
}
}
if ($_SESSION["tur"] == '1' || $_SESSION["tur"] == '2') {
$pasifYorumlar = getpasifYorumlar();
if ($pasifYorumlar > 0) {
echo "<p>" . $metin[294] . " : <a href=dataCommentList2.php>" . $pasifYorumlar . " <img src='img/uyari.gif' border='0' style=\"vertical-align: middle;\" alt=\"imp\" /></a>";
echo "</p>";
function boardnewslide($start = null, $length = null, $output_method = 'echo')
{
global $txt, $scripturl, $user_info, $context, $modSettings, $sourcedir, $board, $smcFunc, $settings;
if (isset($_REQUEST['start']) && $_REQUEST['start'] > 95) {
$_REQUEST['start'] = 95;
}
$query_parameters = array();
if (!empty($_REQUEST['c']) && empty($board)) {
$_REQUEST['c'] = explode(',', $_REQUEST['c']);
foreach ($_REQUEST['c'] as $i => $c) {
$_REQUEST['c'][$i] = (int) $c;
}
if (count($_REQUEST['c']) == 1) {
$request = $smcFunc['db_query']('', '
SELECT name
FROM {db_prefix}categories
WHERE id_cat = {int:id_cat}
LIMIT 1', array('id_cat' => $_REQUEST['c'][0]));
list($name) = $smcFunc['db_fetch_row']($request);
$smcFunc['db_free_result']($request);
if (empty($name)) {
fatal_lang_error('no_access', false);
}
$context['linktree'][] = array('url' => $scripturl . '#c' . (int) $_REQUEST['c'], 'name' => $name);
}
$request = $smcFunc['db_query']('', '
SELECT b.id_board, b.num_topics
FROM {db_prefix}boards AS b
WHERE b.id_cat IN ({array_int:category_list})
AND {query_see_board}', array('category_list' => $_REQUEST['c']));
$total_cat_posts = 0;
$boards = array();
while ($row = $smcFunc['db_fetch_assoc']($request)) {
$boards[] = $row['id_board'];
$total_cat_posts += $row['num_posts'];
}
$smcFunc['db_free_result']($request);
if (empty($boards)) {
fatal_lang_error('error_no_boards_selected');
}
$query_this_board = 'b.id_board IN ({array_int:boards})';
$query_parameters['boards'] = $boards;
// If this category has a significant number of posts in it...
if ($total_cat_posts > 100 && $total_cat_posts > $modSettings['totalMessages'] / 15) {
$query_this_board .= '
AND m.id_msg >= {int:max_id_msg}';
$query_parameters['max_id_msg'] = max(0, $modSettings['maxMsgID'] - 400 - $_REQUEST['start'] * 7);
}
$context['page_index'] = constructPageIndex($scripturl . '?' . implode(',', $_REQUEST['c']), $_REQUEST['start'], min(100, $total_cat_posts), 5, false);
} elseif (!empty($_REQUEST['boards'])) {
$_REQUEST['boards'] = explode(',', $_REQUEST['boards']);
foreach ($_REQUEST['boards'] as $i => $b) {
$_REQUEST['boards'][$i] = (int) $b;
}
$request = $smcFunc['db_query']('', '
SELECT b.id_board, b.num_topics
FROM {db_prefix}boards AS b
WHERE b.id_board IN ({array_int:board_list})
AND {query_see_board}
LIMIT {int:limit}', array('board_list' => $_REQUEST['boards'], 'limit' => count($_REQUEST['boards'])));
$total_posts = 0;
$boards = array();
$say = 5;
while ($row = $smcFunc['db_fetch_assoc']($request)) {
$boards[] = $row['id_board'];
$total_posts += $row['num_posts'];
}
$smcFunc['db_free_result']($request);
if (empty($boards)) {
fatal_lang_error('error_no_boards_selected');
}
$query_this_board = 'b.id_board IN ({array_int:boards})';
$query_parameters['boards'] = $boards;
// If these boards have a significant number of posts in them...
if ($total_posts > 100 && $total_posts > $modSettings['totalMessages'] / 12) {
$query_this_board .= '
AND m.id_msg >= {int:max_id_msg}';
$query_parameters['max_id_msg'] = max(0, $modSettings['maxMsgID'] - 500 - $_REQUEST['start'] * 9);
}
$context['page_index'] = constructPageIndex($scripturl . '?boards=' . implode(',', $_REQUEST['boards']), $_REQUEST['start'], min(100, $total_posts), 5, false);
} elseif (!empty($board)) {
$request = $smcFunc['db_query']('', '
SELECT num_topics
FROM {db_prefix}boards
WHERE id_board = {int:current_board}
LIMIT 1', array('current_board' => $board));
list($total_posts) = $smcFunc['db_fetch_row']($request);
$smcFunc['db_free_result']($request);
$query_this_board = 'b.id_board = {int:board}';
$query_parameters['board'] = $board;
// If this board has a significant number of posts in it...
if ($total_posts > 80 && $total_posts > $modSettings['totalMessages'] / 5) {
$query_this_board .= '
AND m.id_msg >= {int:max_id_msg}';
$query_parameters['max_id_msg'] = max(0, $modSettings['maxMsgID'] - 600 - $_REQUEST['start'] * 5);
}
$context['page_index'] = constructPageIndex($scripturl . '?board=' . $board . '.%1$d', $_REQUEST['start'], min(100, $total_posts), 5, true);
} else {
$query_this_board = '{query_wanna_see_board}' . (!empty($modSettings['recycle_enable']) && $modSettings['recycle_board'] > 0 ? '
AND b.id_board != {int:recycle_board}' : '') . '
AND m.id_msg >= {int:max_id_msg}';
$query_parameters['max_id_msg'] = max(0, $modSettings['maxMsgID'] - 100 - $_REQUEST['start'] * 6);
$query_parameters['recycle_board'] = $modSettings['recycle_board'];
$settings['adet'] = !empty($settings['adet']) ? (int) $settings['adet'] : 10;
// !!! This isn't accurate because we ignore the recycle bin.
$context['page_index'] = constructPageIndex($scripturl . '?', $_REQUEST['start'], min(100, $modSettings['totalTopics']), $settings['adet'], false);
}
$context['linktree'][] = array('url' => $scripturl . '?action=recent' . (empty($board) ? empty($_REQUEST['c']) ? '' : ';c=' . (int) $_REQUEST['c'] : ';board=' . $board . '.0'));
$key = 'recent-' . $user_info['id'] . '-' . md5(serialize(array_diff_key($query_parameters, array('max_id_msg' => 0)))) . '-' . (int) $_REQUEST['start'];
if (empty($modSettings['cache_enable']) || ($messages = cache_get_data($key, 120)) == null) {
$done = false;
while (!$done) {
// Find the 10 most recent messages they can *view*.
// !!!SLOW This query is really slow still, probably?
$request = $smcFunc['db_query']('', '
SELECT m.id_msg
FROM {db_prefix}messages AS m
INNER JOIN {db_prefix}boards AS b ON (b.id_board = m.id_board)
INNER JOIN {db_prefix}topics AS t ON (t.' . (!empty($modSettings['RecentTopicsOnRecentPostsPage_mode']) && $modSettings['RecentTopicsOnRecentPostsPage_mode'] == 'updated' ? 'id_last_msg' : 'id_first_msg') . ' = m.id_msg)
WHERE ' . $query_this_board . '
AND m.approved = {int:is_approved}
ORDER BY m.id_msg DESC
LIMIT {int:offset}, {int:limit}', array_merge($query_parameters, array('is_approved' => 1, 'offset' => $_REQUEST['start'], 'limit' => 5)));
// If we don't have 10 results, try again with an unoptimized version covering all rows, and cache the result.
if (isset($query_parameters['max_id_msg']) && $smcFunc['db_num_rows']($request) < 5) {
$smcFunc['db_free_result']($request);
$query_this_board = str_replace('AND m.id_msg >= {int:max_id_msg}', '', $query_this_board);
$cache_results = true;
unset($query_parameters['max_id_msg']);
} else {
$done = true;
}
}
$messages = array();
while ($row = $smcFunc['db_fetch_assoc']($request)) {
$messages[] = $row['id_msg'];
}
$smcFunc['db_free_result']($request);
if (!empty($cache_results)) {
cache_put_data($key, $messages, 120);
}
}
// Nothing here... Or at least, nothing you can see...
if (empty($messages)) {
$context['posts'] = array();
return;
}
// Get all the most recent posts.
$request = $smcFunc['db_query']('', '
SELECT
m.id_msg, m.subject, m.smileys_enabled, m.poster_time, m.body, m.id_topic, t.id_board, b.id_cat,
b.name AS bname, c.name AS cname, t.num_replies, m.id_member, m2.id_member AS id_first_member,
IFNULL(mem2.real_name, m2.poster_name) AS first_poster_name, t.id_first_msg,
IFNULL(mem.real_name, m.poster_name) AS poster_name, t.id_last_msg
FROM {db_prefix}messages AS m
INNER JOIN {db_prefix}topics AS t ON (t.id_topic = m.id_topic)
INNER JOIN {db_prefix}boards AS b ON (b.id_board = t.id_board)
INNER JOIN {db_prefix}categories AS c ON (c.id_cat = b.id_cat)
INNER JOIN {db_prefix}messages AS m2 ON (m2.id_msg = t.id_first_msg)
LEFT JOIN {db_prefix}members AS mem ON (mem.id_member = m.id_member)
LEFT JOIN {db_prefix}members AS mem2 ON (mem2.id_member = m2.id_member)
WHERE m.id_msg IN ({array_int:message_list})
ORDER BY m.id_msg DESC
LIMIT ' . count($messages), array('message_list' => $messages));
$counter = $_REQUEST['start'] + 1;
$context['posts'] = array();
$board_ids = array('own' => array(), 'any' => array());
while ($row = $smcFunc['db_fetch_assoc']($request)) {
// If we want to limit the length of the post.
if (!empty($length) && $smcFunc['strlen']($row['body']) > $length) {
$row['body'] = $smcFunc['substr']($row['body'], 0, $length);
$cutoff = false;
$last_space = strrpos($row['body'], ' ');
$last_open = strrpos($row['body'], '<');
$last_close = strrpos($row['body'], '>');
if (empty($last_space) || $last_space == $last_open + 3 && (empty($last_close) || !empty($last_close) && $last_close < $last_open) || $last_space < $last_open || $last_open == $length - 6) {
$cutoff = $last_open;
} elseif (empty($last_close) || $last_close < $last_open) {
$cutoff = $last_space;
}
if ($cutoff !== false) {
$row['body'] = $smcFunc['substr']($row['body'], 0, $cutoff);
}
$row['body'] .= '...';
}
$row['body'] = parse_bbc($row['body'], $row['smileys_enabled'], $row['id_msg']);
if (!empty($recycle_board) && $row['id_board'] == $recycle_board) {
$row['icon'] = 'recycled';
}
// Check that this message icon is there...
if (!empty($modSettings['messageIconChecks_enable']) && !isset($icon_sources[$row['icon']])) {
$icon_sources[$row['icon']] = file_exists($settings['theme_dir'] . '/images/post/' . $row['icon'] . '.png') ? 'images_url' : 'default_images_url';
}
// Censor everything.
censorText($row['body']);
censorText($row['subject']);
// BBC-atize the message.
$row['body'] = parse_bbc($row['body'], $row['smileys_enabled'], $row['id_msg']);
$secimyap = preg_match_all('/<img.+src=[\'"]([^\'"]+)[\'"].*>/i', $row['body'], $sonuc);
// src="" içindekini al.
if (!empty($sonuc[0]) && !empty($sonuc[1])) {
$ilkresim = $sonuc[1][0];
} else {
// Resim bulunmazsa default resim ekle
$ilkresim = $settings['theme_url'] . '/images/konusaldefault.png';
}
// And build the array.
$context['posts'][$row['id_msg']] = array('id' => $row['id_msg'], 'counter' => $counter++, 'alternate' => $counter % 2, 'category' => array('id' => $row['id_cat'], 'name' => $row['cname'], 'href' => $scripturl . '#c' . $row['id_cat'], 'link' => '<a href="' . $scripturl . '#c' . $row['id_cat'] . '">' . $row['cname'] . '</a>'), 'board' => array('id' => $row['id_board'], 'name' => $row['bname'], 'href' => $scripturl . '?board=' . $row['id_board'] . '.0', 'link' => '<a href="' . $scripturl . '?board=' . $row['id_board'] . '.0">' . $row['bname'] . '</a>'), 'topic' => $row['id_topic'], 'href' => $scripturl . '?topic=' . $row['id_topic'] . '.msg' . $row['id_msg'] . '#msg' . $row['id_msg'], 'link' => '<a href="' . $scripturl . '?topic=' . $row['id_topic'] . '.msg' . $row['id_msg'] . '#msg' . $row['id_msg'] . '" rel="nofollow">' . $row['subject'] . '</a>', 'start' => $row['num_replies'], 'subject' => $row['subject'], 'resim' => $ilkresim, 'time' => timeformat($row['poster_time']), 'timestamp' => forum_time(true, $row['poster_time']), 'first_poster' => array('id' => $row['id_first_member'], 'name' => $row['first_poster_name'], 'href' => empty($row['id_first_member']) ? '' : $scripturl . '?action=profile;u=' . $row['id_first_member'], 'link' => empty($row['id_first_member']) ? $row['first_poster_name'] : '<a href="' . $scripturl . '?action=profile;u=' . $row['id_first_member'] . '">' . $row['first_poster_name'] . '</a>'), 'poster' => array('id' => $row['id_member'], 'name' => $row['poster_name'], 'href' => empty($row['id_member']) ? '' : $scripturl . '?action=profile;u=' . $row['id_member'], 'link' => empty($row['id_member']) ? $row['poster_name'] : '<a href="' . $scripturl . '?action=profile;u=' . $row['id_member'] . '">' . $row['poster_name'] . '</a>'), 'message' => $row['body'], 'can_reply' => false, 'can_mark_notify' => false, 'can_delete' => false, 'delete_possible' => ($row['id_first_msg'] != $row['id_msg'] || $row['id_last_msg'] == $row['id_msg']) && (empty($modSettings['edit_disable_time']) || $row['poster_time'] + $modSettings['edit_disable_time'] * 60 >= time()));
if ($user_info['id'] == $row['id_first_member']) {
$board_ids['own'][$row['id_board']][] = $row['id_msg'];
}
$board_ids['any'][$row['id_board']][] = $row['id_msg'];
}
$smcFunc['db_free_result']($request);
// There might be - and are - different permissions between any and own.
$permissions = array('own' => array('post_reply_own' => 'can_reply', 'delete_own' => 'can_delete'), 'any' => array('post_reply_any' => 'can_reply', 'mark_any_notify' => 'can_mark_notify', 'delete_any' => 'can_delete'));
// Now go through all the permissions, looking for boards they can do it on.
foreach ($permissions as $type => $list) {
foreach ($list as $permission => $allowed) {
// They can do it on these boards...
$boards = boardsAllowedTo($permission);
// If 0 is the only thing in the array, they can do it everywhere!
if (!empty($boards) && $boards[0] == 0) {
$boards = array_keys($board_ids[$type]);
}
// Go through the boards, and look for posts they can do this on.
foreach ($boards as $board_id) {
// Hmm, they have permission, but there are no topics from that board on this page.
if (!isset($board_ids[$type][$board_id])) {
continue;
}
// Okay, looks like they can do it for these posts.
foreach ($board_ids[$type][$board_id] as $counter) {
if ($type == 'any' || $context['posts'][$counter]['poster']['id'] == $user_info['id']) {
$context['posts'][$counter][$allowed] = true;
}
}
}
}
}
$quote_enabled = empty($modSettings['disabledBBC']) || !in_array('quote', explode(',', $modSettings['disabledBBC']));
foreach ($context['posts'] as $counter => $dummy) {
// Some posts - the first posts - can't just be deleted.
$context['posts'][$counter]['can_delete'] &= $context['posts'][$counter]['delete_possible'];
// And some cannot be quoted...
$context['posts'][$counter]['can_quote'] = $context['posts'][$counter]['can_reply'] && $quote_enabled;
}
global $context, $settings, $options, $txt, $scripturl;
echo '<script type="text/javascript" src="', $settings['theme_url'], '/scripts/modernizr.custom.28468.js"></script>
<div id="da-slider" class="da-slider">';
foreach ($context['posts'] as $post) {
echo '
<div class="da-slide">
<h2><a href="', $post['href'], '">', $post['subject'], '</a></h2>
<p>', temizle($post['message']), ' </p>
<a href="', $post['href'], '" class="da-link">', $txt['Read'], '</a>
<div class="da-img"><a href="', $post['href'], '"> <img width="120px" src="', $post['resim'], '" alt="', $post['subject'], '" class="haber_resmi" /></a></div>
</div>';
}
echo '
</div>
<script type="text/javascript" src="', $settings['theme_url'], '/scripts/jquery.cslider.js"></script>
<script type="text/javascript">
$(function() {
$(\'#da-slider\').cslider({
autoplay : true,
bgincrement : 450
});
});
</script>';
}
function temaBilgisi()
{
$result = numToTheme(0);
//ilk tema
$cerezden = temizle(isset($_COOKIE["theme"]) ? $_COOKIE["theme"] : "");
if ($cerezden != "" and is_dir('theme/' . $cerezden)) {
$result = $cerezden;
}
if (empty($cerezden)) {
setcookie("theme", $result, time() + 60 * 60 * 24 * 30);
}
return $result;
}
</span></span></a></li>
<li><a href="dataFriendActions.php"><span><span> <?php
echo $metin[594] . $bilgi10;
?>
</span></span></a></li>
</ul>
</li>
</ul>
</li>
<?php
}
?>
<li><a href="index.php?logout=1"><span><span><img src="img/logout.png" border="0" style="vertical-align: middle;" alt="logout"/>
<?php
if (!empty($adi)) {
echo temizle($adi) . " ";
}
?>
<?php
echo $metin[59];
?>
</span></span></a>
<?php
if ($remUser) {
?>
<ul>
<li> <a href="index.php?forgetMe=1"><span><span><?php
echo $metin[196];
?>
</span></span></a> </li>
</ul>
break;
case '1':
$ktut = $metin[87];
break;
case '2':
$ktut = $metin[88];
break;
default:
$ktut = $metin[89];
}
?>
<p> <?php
echo $metin[7];
?>
, <?php
echo temizle($_SESSION["userr"]) . " " . $ktut;
?>
</p>
<?php
if ($_SESSION["tur"] == '1' || $_SESSION["tur"] == '2') {
$pasifYorumlar = getpasifYorumlar();
if ($pasifYorumlar > 0) {
echo $metin[294] . " : <a href=dataCommentList2.php>" . $pasifYorumlar . " <img src='img/uyari.gif' border='0' style=\"vertical-align: middle;\" alt=\"imp\" /></a>";
echo "<br/>";
}
}
if (trim(getStats(11)) != "") {
echo "<br/><div class='ikiKolon'>";
echo "<strong>" . $metin[213] . "</strong><br/>" . getStats(11) . "</div>";
if (trim(getStats(12)) != "") {
echo "<div class='ikiKolon'><strong>" . $metin[239] . "</strong><br/>" . getStats(12) . "</div>";
function istekListesi()
{
global $yol1;
$lmt = 30;
//son 30 günlük yeter
$user = temizle(substr(isset($_SESSION["usern"]) ? $_SESSION["usern"] : "", 0, 15));
$sql = "SELECT dateTime,DATE_FORMAT(dateTime, '%d-%m-%Y') as dt FROM eo_usertrack WHERE (unix_timestamp(now()) - unix_timestamp(dateTime) )/3600/24 <= {$lmt} and userName='******' and otherInfo like 'request%' order by dateTime DESC";
$result = mysql_query($sql, $yol1);
$data = "";
while ($row = mysql_fetch_assoc($result)) {
$data .= $row['dt'] . ", ";
}
$data = substr($data, 0, strlen($data) - 2);
//son , silindi
return $data;
}
}
}
if (isset($_POST["MM_update"]) && $_POST["MM_update"] == "form3") {
if (GetSQLValueString($_POST['realName'], "text") == 'NULL' || GetSQLValueString($_POST['userEmail'], "text") == 'NULL' || GetSQLValueString($_POST['userBirthDate'], "text") == 'NULL') {
echo "<font id='hata'>Üye bilgilerinizde eksik alanlar vardýr.</font>";
} else {
if (!isset($_POST['prldeg'])) {
$_POST['prldeg'] = "";
}
if ($_POST['prldeg'] != "secili" && (GetSQLValueString($_POST['userPassword'], "text") == 'NULL' || GetSQLValueString($_POST['userPassword2'], "text") == 'NULL' || $_POST["userPassword"] != $_POST["userPassword2"] || strlen($_POST["userPassword"]) < 5 || $adi == $_POST["userPassword"] || substr_count($_POST["userPassword"], substr($_POST["userPassword"], 0, 1)) == strlen($_POST["userPassword"]) || $_POST["userPassword"] == "12345678")) {
echo "<font id='hata'>Yeni parolanýzý yazmadýnýz, tekrarý boþ geçtiniz, parola ile kullanýcý adý ayný, tekrarlý deðer girdiniz, 12345678 girdiniz veya çok kýsa bir parola girdiniz!</font>";
} else {
if ($_POST['prldeg'] == "secili") {
$updateSQL = sprintf("UPDATE eo_users SET realName=%s, userEmail=%s, userBirthDate='%s' WHERE id=%s", temizle(RemoveXSS(GetSQLValueString($_POST['realName'], "text"))), temizle(RemoveXSS(GetSQLValueString($_POST['userEmail'], "text"))), tarihYap($_POST['userBirthDate']), temizle(RemoveXSS(GetSQLValueString($_POST['id'], "int"))));
} else {
$updateSQL = sprintf("UPDATE eo_users SET userPassword=sha1(%s), realName=%s, userEmail=%s, userBirthDate='%s' WHERE id=%s", temizle(RemoveXSS(GetSQLValueString($_POST['userPassword'], "text"))), temizle(RemoveXSS(GetSQLValueString($_POST['realName'], "text"))), temizle(RemoveXSS(GetSQLValueString($_POST['userEmail'], "text"))), tarihYap($_POST['userBirthDate']), temizle(RemoveXSS(GetSQLValueString($_POST['id'], "int"))));
}
mysql_select_db($_db, $yol);
$Result1 = mysql_query($updateSQL, $yol);
if ($Result1) {
echo "<font id='tamam'> {$metin['536']}</font>";
trackUser($currentFile, "success,UserInf", $adi);
if ($_POST['prldeg'] != "secili") {
trackUser($currentFile, "success,PasswdC", $adi);
die("<font id='hata'> Parolanýzý deðiþtirdiðiniz için tekrar oturum açmanýz gerekmektedir!</font>");
}
} else {
trackUser($currentFile, "fail,UserInf", $adi);
echo "<font id='hata'> Üye bilgilerinizde hata olduðunda güncelleme iþleminiz tamamlanamadý! Örneðin kullanýlan bir eposta adresi girdiniz.</font>";
}
}
function temizleCubuk($gelen)
{
$gelen = str_replace("|", "¦", temizle($gelen));
return $gelen;
}
</span></span></a> </div>
</div>
</div>
<?php
} else {
?>
<form id="formLogin" method="post" action="login.php">
<label for="userN"> <?php
echo $metin[0];
?>
: </label>
<input type="hidden" name="form" value="login" />
<div>
<input name="userN" type="text" id="userN" size="18" maxlength="15" class="required" style="width:150px"
value="<?php
echo $remUser ? temizle($_COOKIE["remUser"]) : "";
?>
" />
</div>
<label for="userP"> <?php
echo $metin[1];
?>
: </label>
<div>
<input name="userP" type="password" id="userP" size="18" maxlength="15" class="required" style="width:150px" />
</div>
<br />
<input type="submit" name="sumb" id="sumb" value="<?php
echo $metin[2];
?>
" />
function anaMetniOku($gelen, $sayfaNo)
{
global $yol1;
global $metin;
if (empty($gelen)) {
return "<font id='uyari'>{$metin['176']}</font>|-|-|-|-|-|-|-|-|-|-|-|-|-|-";
}
if (empty($sayfaNo)) {
return "<font id='uyari'>{$metin['176']}</font>|-|-|-|-|-|-|-|-|-|-|-|-|-|-";
}
$sql1 = "select \r\n\t eo_5sayfa.id,eo_5sayfa.anaMetin as ana,eo_5sayfa.cevap as cevap,\r\n\t\t\t\teo_5sayfa.eklenmeTarihi as tarih,\t\t\t\t\r\n\t\t\t\teo_5sayfa.slideGecisSuresi as sgSuresi,\r\n\t\t\t\teo_5sayfa.cevapSuresi as cSuresi,\r\n\t\t\t\teo_users.userName as user, \r\n\t\t\t\teo_4konu.konuAdi as konuAdi,eo_4konu.konuyuKilitle as konuyuKilitle,\t\t\r\n\t\t\t\teo_4konu.oncekiKonuID as oncekiKonuID, eo_4konu.calismaHakSayisi as calismaHakSayisi,\t\r\n\t\t\t\teo_4konu.calismaSuresiDakika as calismaSuresiDakika,\r\n\t\t\t\teo_4konu.sinifaDahilKullaniciGorebilir as sinifaDahilKullaniciGorebilir,\r\n\t\t\t\teo_4konu.bitisTarihi as bitisTarihi, eo_4konu.sadeceKayitlilarGorebilir as skg, \r\n\t\t\t\teo_4konu.id as aktifKonuNo\r\n\t\t\t\tfrom eo_5sayfa, eo_users, eo_4konu \r\n\t\t\t\twhere eo_5sayfa.konuID='{$gelen}' and \r\n\t\t\t\t(eo_users.id=eo_5sayfa.ekleyenID) and (eo_4konu.id=eo_5sayfa.konuID) \r\n\t\t\t\torder by eo_5sayfa.sayfaSirasi";
$result1 = mysql_query($sql1, $yol1);
if ($result1) {
mysql_fetch_row($result1);
$kayitSayisi = @mysql_numrows($result1);
if ($sayfaNo < 0) {
$sayfaNo = 0;
} else {
if ($sayfaNo > $kayitSayisi) {
$sayfaNo = $kayitSayisi - 1;
} else {
$sayfaNo = $sayfaNo - 1;
}
}
//0 index kayit baslangicidir
$humanRelativeDate = new HumanRelativeDate();
$insansi = $humanRelativeDate->getTextForSQLDate(@mysql_result($result1, $sayfaNo, "tarih"));
$tarih = $insansi;
$user = @mysql_result($result1, $sayfaNo, "user");
$cevap = @mysql_result($result1, $sayfaNo, "cevap");
$konuAdi = @mysql_result($result1, $sayfaNo, "konuAdi");
$konuyuKilitle = @mysql_result($result1, $sayfaNo, "konuyuKilitle");
$bitisTarihi = @mysql_result($result1, $sayfaNo, "bitisTarihi");
$sKayitlilarG = @mysql_result($result1, $sayfaNo, "skg");
$aktifKonuNo = @mysql_result($result1, $sayfaNo, "aktifKonuNo");
$oncekiKonuID = @mysql_result($result1, $sayfaNo, "oncekiKonuID");
$calismaHakS = @mysql_result($result1, $sayfaNo, "calismaHakSayisi");
$sgSuresi = temizle(@mysql_result($result1, $sayfaNo, "sgSuresi"));
$cSuresi = temizle(@mysql_result($result1, $sayfaNo, "cSuresi"));
$calismaSuresiD = $sKayitlilarG ? @mysql_result($result1, $sayfaNo, "calismaSuresiDakika") : "0";
$sinifOgreK = $sKayitlilarG ? @mysql_result($result1, $sayfaNo, "sinifaDahilKullaniciGorebilir") : "0";
$oncekiKonuAdi = getOncekiKonuAdi($oncekiKonuID);
$sonrakiKonuID = getSonrakiKonu($gelen, "id");
$sonrakiKonuAdi = getSonrakiKonu($gelen, "konuAdi");
if ($bitisTarihi != "0000-00-00") {
$gunFarki = getDayCount(date("Y-n-j"), $bitisTarihi);
} else {
$gunFarki = 1;
}
$adi = temizle(substr(isset($_SESSION["usern"]) ? $_SESSION["usern"] : "", 0, 15));
$par = temizle(isset($_SESSION["userp"]) ? $_SESSION["userp"] : "");
$tur = checkRealUser($adi, $par);
if ($kayitSayisi > 0) {
if ($sKayitlilarG == "1" && !in_array($tur, array("1", "2", "0"))) {
//login olmamýþ
return "<font id='hata'>'{$konuAdi}' " . $metin[181] . "<br/><a href='newUser.php'><img src='img/user_manager.gif' border=\"0\" style=\"vertical-align: middle;\" alt='" . $metin[149] . "' title='" . $metin[149] . "' />{$metin['3']}!</a> <a href='index.php'><img src=\"img/home.png\" border=\"0\" style=\"vertical-align: middle;\" alt=\"main\"/> {$metin['2']}</a></font>|-|-|-|-|-|-|-|-|-|-|-|-|-|-";
}
if ($sKayitlilarG == "1" && in_array($tur, array("1", "2", "0"))) {
if (kullaniciHakSayisi($gelen, $adi, $par) >= $calismaHakS && $calismaHakS > 0) {
return "<font id='hata'>'{$konuAdi}', " . $metin[208] . "</font>|-|-|-|-|-|-|-|-|-|-|-|-|-|-";
}
}
if ($sKayitlilarG == "1" && $tur == "0") {
if (ogrenciSinifaDahil($adi, $par, $gelen) == 0 && $sinifOgreK == 1) {
return "<font id='hata'>'{$konuAdi}', " . $metin[214] . "</font>|-|-|-|-|-|-|-|-|-|-|-|-|-|-";
}
}
if ($konuyuKilitle == "1") {
return "<font id='hata'><img src='img/lock.png' border=\"0\" style=\"vertical-align: middle;\" alt='" . $metin[179] . "' title='" . $metin[179] . "' /> '{$konuAdi}' " . $metin[179] . "</font>|-|-|-|-|-|-|-|-|-|-|-|-|-|-";
}
if ($gunFarki <= 0) {
return "<font id='hata'>'{$konuAdi}' " . $metin[180] . "</font>|-|-|-|-|-|-|-|-|-|-|-|-|-|-";
}
$cevaplanmisMi = @array_key_exists(mysql_result($result1, $sayfaNo, "id"), $_SESSION["cevaplar"]);
if (($cevap != "" || is_numeric($cevap)) && !$cevaplanmisMi) {
$cevap = mysql_result($result1, $sayfaNo, "id");
} else {
$cevap = "-";
}
return html_entity_decode(@mysql_result($result1, $sayfaNo, "ana")) . "|" . $tarih . "|" . $user . "|" . $kayitSayisi . "|" . $sayfaNo . "|" . $konuAdi . "|" . $oncekiKonuID . "|" . $oncekiKonuAdi . "|" . $sonrakiKonuID . "|" . $sonrakiKonuAdi . "|" . $calismaSuresiD . "|" . $cevap . "|" . $aktifKonuNo . "|" . $cSuresi . "|" . $sgSuresi;
} else {
return "<font id='hata'><img src='img/empty.png' border=\"0\" style=\"vertical-align: middle;\" alt='" . $metin[209] . "' title='" . $metin[209] . "' />" . $metin[182] . "</font>|-|-|-|-|-|-|-|-|-|-|-|-|-|-";
}
} else {
return "<font id='hata'>" . $metin[183] . "</font>|-|-|-|-|-|-|-|-|-|-|-|-|-|-";
}
return "<font id='hata'>" . $metin[184] . "</font>|-|-|-|-|-|-|-|-|-|-|-|-|-|-";
}
<label for="theme"><?php
echo $metin[154];
?>
: </label>
<select name="theme" id="theme" onchange="document.themeSelect.submit();">
<?php
$themeArray = glob('theme/*', GLOB_ONLYDIR);
$i = 0;
foreach ($themeArray as $thme) {
?>
<option value="<?php
$temaGel = explode("/", $thme);
echo $temaGel[1];
?>
" <?php
if (!(!empty($_COOKIE['theme']) && strcmp($temaGel[1], temizle($_COOKIE['theme'])))) {
echo "selected=\"selected\"";
}
?>
>
<?php
echo $temaGel[1];
?>
</option>
<?php
$i++;
}
?>
</select>
<?php
}
function anaMetniOku($konuID)
{
global $yol1;
global $metin;
$sonuc = "";
if (empty($konuID)) {
return "<font id='uyari'>{$metin['176']}</font>";
}
$sql1 = "select eo_5sayfa.id,eo_5sayfa.anaMetin as ana ,eo_5sayfa.cevap as cevap, eo_5sayfa.eklenmeTarihi as tarih,eo_users.userName as user, \r\n\t\t\t\t\teo_4konu.konuAdi as konuAdi,eo_4konu.konuyuKilitle as konuyuKilitle, \r\n\t\t\t\t\teo_4konu.oncekiKonuID as oncekiKonuID, eo_4konu.calismaHakSayisi as calismaHakSayisi, \r\n\t\t\t\t\teo_4konu.sinifaDahilKullaniciGorebilir as sinifaDahilKullaniciGorebilir, \r\n\t\t\t\t\teo_4konu.bitisTarihi as bitisTarihi, eo_4konu.sadeceKayitlilarGorebilir as skg \r\n\t\t\t\t\tfrom eo_5sayfa, eo_users, eo_4konu where eo_5sayfa.konuID='{$konuID}' and \r\n\t\t\t\t\t(eo_users.id=eo_5sayfa.ekleyenID) and (eo_4konu.id=eo_5sayfa.konuID) and (eo_5sayfa.cevap='')\r\n\t\t\t\t\torder by eo_5sayfa.sayfaSirasi";
// cevap boþ ise SORU deðildir, öyleyse ekrana listelenebilir
$result1 = mysql_query($sql1, $yol1);
if ($result1) {
$kayitSayisi = @mysql_numrows($result1);
$sonuc = "";
while ($row = mysql_fetch_array($result1, MYSQL_ASSOC)) {
$tarih = tarihOku($row["tarih"]);
$user = $row["user"];
$konuAdi = $row["konuAdi"];
$konuyuKilitle = $row["konuyuKilitle"];
$bitisTarihi = $row["bitisTarihi"];
$sKayitlilarG = $row["skg"];
$calismaHakS = $row["calismaHakSayisi"];
$sinifOgreK = $row["sinifaDahilKullaniciGorebilir"];
$oncekiKonuID = $row["oncekiKonuID"];
if ($bitisTarihi != "0000-00-00") {
$gunFarki = getDayCount(date("Y-n-j"), $bitisTarihi);
} else {
$gunFarki = 1;
}
$adi = temizle(substr(isset($_SESSION["usern"]) ? $_SESSION["usern"] : "", 0, 15));
$par = temizle(isset($_SESSION["userp"]) ? $_SESSION["userp"] : "");
$tur = checkRealUser($adi, $par);
if ($kayitSayisi > 0) {
if ($sKayitlilarG == "1" && !in_array($tur, array("1", "2", "0"))) {
return "<font id='hata'>'{$konuAdi}' " . $metin[181] . "<br/><a href='newUser.php'>{$metin['3']}!</a></font><hr noshade='noshade'/>";
}
if ($sKayitlilarG == "1" && in_array($tur, array("1", "2", "0"))) {
if (kullaniciHakSayisi($konuID, $adi, $par) >= $calismaHakS && $calismaHakS > 0) {
return "<font id='hata'>'{$konuAdi}', " . $metin[208] . "</font><hr noshade='noshade'/>";
}
}
if ($sKayitlilarG == "1" && $tur == "0") {
if (ogrenciSinifaDahil($adi, $par, $konuID) == 0 && $sinifOgreK == 1) {
return "<font id='hata'>'{$konuAdi}', " . $metin[214] . "</font>";
}
}
if ($konuyuKilitle == "1") {
return "<font id='hata'>'{$konuAdi}' " . $metin[179] . "</font><hr noshade='noshade'/>";
}
if ($gunFarki <= 0) {
return "<font id='hata'>'{$konuAdi}' " . $metin[180] . "</font><hr noshade='noshade'/>";
}
$sonuc .= "<font size='-1' style='font-style:italic;'>{$user} {$konuAdi} {$tarih}</font><br/>";
$sonuc .= html_entity_decode($row["ana"]) . "<hr noshade='noshade'/>";
} else {
return "<font id='hata'>" . $metin[182] . "</font><hr noshade='noshade'/>";
}
}
//while
return $sonuc;
} else {
return "<font id='hata'>" . $metin[183] . "</font>";
}
return "<font id='hata'>" . $metin[184] . "</font>";
}
*/
function cevapOy(deger, gonderen, cevapID){
httpObject3 = getHTTPObject();
if (httpObject3 != null) {
httpObject3.open("POST", "oyCevap.php", true);
httpObject3.setRequestHeader('Content-Type','application/x-www-form-urlencoded; charset=iso-8859-9');
httpObject3.send('deger='+encodeURIComponent(deger) + '&gonderen=' + encodeURIComponent(gonderen) + '&cevapID=' + encodeURIComponent(cevapID) );
httpObject3.onreadystatechange = setOutputOda3;
}
}
</script>
</head>
<body>
<?php
$adi = temizle(substr(isset($_SESSION["usern"]) ? $_SESSION["usern"] : "", 0, 15));
$par = temizle(isset($_SESSION["userp"]) ? $_SESSION["userp"] : "");
$tur = checkRealUser($adi, $par);
$gecerliKullID = getUserID2($adi);
if ($tur == "2" or $tur == "1" or $tur == "0") {
//öðrenci, öðretmen ve yönetici girebilir
$gelenID = (int) RemoveXSS($_GET["oku"]);
if (!($gelenID > 0)) {
die("?");
}
$srg = "select * from eo_askquestion where id={$gelenID} limit 0,1";
$sorgu = mysql_query($srg);
$soru_bilgileri = mysql_fetch_array($sorgu);
if ($soru_bilgileri["question"] != "") {
?>
<div id="kapsayici">
<div id="soruMetni">
Developer Site: http://yunus.sourceforge.net
Demo Site: http://yunus.sourceforge.net/eogr
Source Track: http://eogr.googlecode.com
Support: http://www.ohloh.net/p/eogr
This project is free software; you can redistribute it and/or
modify it under the terms of the GNU Lesser General Public
License as published by the Free Software Foundation; either
version 3 of the License, or any later version. See the GNU
Lesser General Public License for more details.
*/
ob_start();
// Buffer output
session_start();
$_SESSION['ready'] = TRUE;
require "conf.php";
if (!check_source()) {
die("<font id='hata'>{$metin['295']}</font>");
}
parse_str($_POST['data']);
$konusu = temizle($_SESSION['konuID']);
$action = $_POST['action'];
$updateRecordsArray = $_POST['recordsArray'];
if ($action == "updateRecordsListings") {
$listingCounter = 1;
foreach ($updateRecordsArray as $recordIDValue) {
$query = "update eo_5sayfa set sayfaSirasi='" . $listingCounter . "' where id='" . $recordIDValue . "' and konuID='" . $konusu . "'";
mysql_query($query) or die('Error, insert query failed');
$listingCounter = $listingCounter + 1;
}
}
<?php
echo "<strong><a href='profil.php?kim=" . $uID . "' rel='facebox'><span style='text-transform: capitalize;'>" . strtolower(kullGercekAdi($uID)) . "</span></a></strong><br/>";
echo getStats(12, $uID);
?>
</div>
</div>
<div class="cleared"></div>
</div>
</div>
</div>
<?php
}
?>
<?php
$dersID = temizle(isset($_GET["kurs"]) ? $_GET["kurs"] : "");
$uID = temizle(isset($_GET["user"]) ? $_GET["user"] : "");
if (!empty($dersID)) {
?>
<div class="Post">
<div class="Post-tl"></div>
<div class="Post-tr">
<div> </div>
</div>
<div class="Post-bl">
<div> </div>
</div>
<div class="Post-br">
<div> </div>
</div>
<div class="Post-tc">
<div> </div>
}
if (empty($_GET["yonU"])) {
$_GET["yonU"] = "";
}
if (empty($_SESSION["siraYonu2"])) {
$siraYonu = "desc";
$_SESSION["siraYonu2"] = $siraYonu;
} else {
if (!empty($_GET['siraYap']) and $_GET["yonU"] != "dur" && $_GET['siraYap'] == "OK") {
$siraYonu = $_SESSION["siraYonu2"] == "desc" ? "asc" : "desc";
$_SESSION["siraYonu2"] = $siraYonu;
} else {
$siraYonu = $_SESSION["siraYonu2"];
}
}
$sirAlan = temizle(isset($_GET['order']) ? $_GET['order'] : "");
if ($sirAlan != "") {
$query_eoUsers = "SELECT eo_comments.id as id, eo_comments.konuID as konuID, eo_users.id as userID, eo_comments.active, eo_comments.comment, eo_comments.commentDate,eo_users.userName as userName, eo_4konu.konuAdi as konuAdi FROM eo_comments {$filtr2} ORDER BY {$sirAlan} {$siraYonu}";
} else {
$query_eoUsers = "SELECT eo_comments.id as id, eo_comments.konuID as konuID, eo_users.id as userID, eo_comments.active,eo_comments.comment, eo_comments.commentDate, eo_users.userName as userName, eo_4konu.konuAdi as konuAdi FROM eo_comments {$filtr2} ORDER BY eo_comments.commentDate DESC";
$sirAlan = "commentDate";
}
if (!empty($_GET["upd"]) and $_GET["upd"] == "1") {
$query_limit_eoUsers = "SELECT eo_comments.id as id, eo_comments.comment FROM eo_comments where id='" . RemoveXSS($_GET["id"]) . "'";
} else {
$query_limit_eoUsers = sprintf("%s LIMIT %d, %d", $query_eoUsers, $startRow_eoUsers, $maxRows_eoUsers);
}
$eoUsers = mysql_query($query_limit_eoUsers, $yol);
if (!$eoUsers) {
echo mysql_error();
}
<?php
session_start();
error_reporting(0);
if (!isset($_POST['urunID']) || empty($_POST['urunID']) || !isset($_POST['kat']) || empty($_POST['kat']) || !isset($_POST['toplam']) || empty($_POST['toplam'])) {
exit;
} else {
include '../../library/Elkatek_Connection.php';
include '../../library/guvenlik.php';
include '../../library/functions.php';
$fonks = new yeniyol();
function temizle($veri)
{
return trim(strip_tags(mysql_real_escape_string($veri)));
}
$say = mysql_num_rows(mysql_query("SELECT id FROM sepet WHERE sepet='" . temizle($sessionID) . "' AND urun='" . intval($_POST['urunID']) . "'"));
if ($say > 0) {
$guncelle = mysql_query("UPDATE sepet SET adet=adet+" . intval($_POST['toplam']) . " WHERE sepet='" . temizle($sessionID) . "' AND urun='" . intval($_POST['urunID']) . "' LIMIT 1");
} else {
$kayit = mysql_query("INSERT INTO sepet VALUES(NULL,'" . date("Y-m-d") . "','" . temizle($sessionID) . "','" . intval($_POST['kat']) . "','" . intval($_POST['toplam']) . "','" . intval($_POST['urunID']) . "','')");
}
echo $fonks->sepet(temizle($sessionID));
$baglan->kapat();
}
$query_eoUsers = "SELECT * FROM eo_users {$filtr2} ORDER BY {$sirAlan} {$siraYonu}";
} else {
$sirAlan = "requestDate";
$query_eoUsers = "SELECT * FROM eo_users {$filtr2} ORDER BY {$sirAlan} DESC";
}
}
if (!empty($_GET["upd"]) and $_GET["upd"] == "1") {
$query_limit_eoUsers = sprintf("%s", $query_eoUsers);
} else {
$query_limit_eoUsers = sprintf("%s LIMIT %d, %d", $query_eoUsers, $startRow_eoUsers, $maxRows_eoUsers);
}
$eoUsers = mysql_query($query_limit_eoUsers, $yol) or die(mysql_error());
$row_eoUsers = mysql_fetch_assoc($eoUsers);
$totalRows_eoUsers = mysql_num_rows($eoUsers);
if (isset($_GET['totalRows_eoUsers'])) {
$totalRows_eoUsers = temizle($_GET['totalRows_eoUsers']);
} else {
$all_eoUsers = mysql_query($query_eoUsers);
$totalRows_eoUsers = mysql_num_rows($all_eoUsers);
}
$totalPages_eoUsers = ceil($totalRows_eoUsers / $maxRows_eoUsers) - 1;
$queryString_eoUsers = "";
if (!empty($_SERVER['QUERY_STRING'])) {
$params = explode("&", $_SERVER['QUERY_STRING']);
$newParams = array();
foreach ($params as $param) {
if (stristr($param, "pageNum_eoUsers") == false && stristr($param, "totalRows_eoUsers") == false && stristr($param, "siraYap") == false) {
array_push($newParams, $param);
}
}
if (count($newParams) != 0) {
<span class="hint"><?php
echo $metin[284];
?>
<br />
<span id="msg2"></span><span id="pr2" style="visibility:hidden;"><img src="img/loadingRect2.gif" border="0" style="vertical-align: middle;" alt="loading" /></span><span class="hint-pointer"> </span></span> </div>
</dd>
<dt>
<label for="birth"> <?php
echo $metin[42];
?>
:</label>
</dt>
<dd>
<div>
<input name="birth" type="text" id="birth" size="35" maxlength="30" style="width:150px" class="required dateDE" value="<?php
echo isset($_POST["birth"]) ? temizle($_POST["birth"]) : "31.12.1990";
?>
"/>
<span class="hint"><?php
echo $metin[285];
?>
<span class="hint-pointer"> </span></span> </div>
</dd>
<dd>
<div>
<label><?php
echo $metin[43];
?>
<input type="checkbox" name="onay" id="onay" value="OK" class="required" />
</label>
</div>
$address1 = getMailAddress($address1);
if (!email_valid($address1) && !empty($address1)) {
echo "<font id='hata'>Özür dileriz, kullanýcýnýn eposta adresi bilgisinde sorun var!</font>";
$hata = true;
}
if (isset($_POST["konu"])) {
if ($_POST["ccode"] != $_SESSION["ccode"]) {
echo "<font id='hata'> Kod boþ veya hatalý girildi!</font>";
$hata = true;
$_SESSION["ccode"] = "";
} else {
$_SESSION["ccode"] = "";
$subject = temizle($_POST["konu"]);
$address = temizle($_POST["address"]);
$address = getMailAddress($address);
$bodisi = temizle($_POST["icerik"]);
$gonderenMail = getMailAddress(getUserID2($_SESSION["usern"]));
if ($gonderenMail == "") {
$gonderenMail = ayarGetir("ayar4char");
}
$headers = 'MIME-Version: 1.0' . "\r\n";
$headers .= 'Content-type: text/html; charset=iso-8859-9' . "\r\n";
$headers .= "From:" . $gonderenMail . "\r\nReply-To:" . $gonderenMail . "\r\n" . 'X-Mailer: PHP/' . phpversion();
if (email_valid($address)) {
if (@mail("{$address}", "eOgr - {$subject}", "{$bodisi}", $headers)) {
echo "<font id='tamam'>Epostanýz Gönderildi!</font>";
$hata = true;
} else {
echo "<font id='hata'>Özür dileriz, þu anda mesajýnýz gönderilemiyor!</font>";
$hata = true;
}
case 12:
return "<h4>{$metin['427']}</h4>" . $metin[438];
break;
case 13:
return "<h4>{$metin['428']}</h4>" . $metin[439];
break;
case 14:
return "<h4>{$metin['429']}</h4>" . $metin[440];
break;
case 15:
return "<h4>{$metin['430']}</h4>" . $metin[441];
break;
case 16:
return "<h4>{$metin['431']}</h4>" . $metin[442];
break;
case "TUMU":
$bilgiler = "{$metin['261']}|" . $metin[266] . "|1~";
$bilgiler .= "{$metin['262']}|" . $metin[267] . "|2~";
$bilgiler .= "{$metin['431']}|" . $metin[442] . "|3~";
return $bilgiler;
break;
}
return "";
}
if (isset($_GET['konu'])) {
if (!empty($_GET['konu'])) {
echo anaMetniOku(temizle($_GET['konu']));
}
} else {
echo "";
}
